CVE-2023-3544

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Jul 7, 2023

Updated: May 17, 2024

CWE ID 79

Summary

CVE-2023-3544 is a vulnerability found in GZ Scripts Time Slot Booking Calendar PHP 1.8. This vulnerability allows for cross-site scripting through manipulation of certain arguments, such as first_name, second_name, phone, address_1, and country. The attack can be initiated remotely. The vendor was notified about this vulnerability but did not respond. The base severity of this vulnerability is rated as MEDIUM with a base score of 6.1 according to [email protected].

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r6G2jl
https://www.cve.org/CVERecord?id=CVE-2023-3544
https://nvd.nist.gov/vuln/detail/CVE-2023-3544

Back to Vulnerability Database

CVE-2023-3544

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations